AppSecEU08 The OWASP ORIZON project

The speech

The Owasp Orizon project is born in 2006 to provide an opensource APIs for anyone involved in writing code review tools.

The project is comprised from several part each devoted to a particular source code assessment:

jericho engine is a set of APIs to perform static code review

dawn engine is a set of APIs to perform dynamic code review

crawler engine is a set of APIs to perform source code crawling as described in Owasp Code review Guide

During the speech the Owasp Orizon internals will be descrived, with a lot of information about the three engines and the method calls they provide. The speech key value will be the announce of a major innovation introduced from the 0.90 engine release.